Anti-Phishing Working Group: Vendor Solutions

membership

Home

Report Phishing

APWG Events

Resources

eCrime & Phishing News

APWG eCrime Newswire
Powered by Exfacto!

Innovators and enterprises have been developing, repurposing and proposing solutions for phishing since the threat began proliferating rapidly in 2003. Since then, media representatives, analysts, enterprises and consumers have asked us to provide a solutions directory on the antiphishing.org website listing the types of anti-phishing solutions available today on the market. Here, in response, the APWG proffers its APWG Solutions Directory, categorized for your browsing convenience.

Prevent cousin domains
Detect and analyze attacks
Takedown
Fraud analysis
Forensic services
Application gateways
Consumer toolbars
Email authentication
Email filtering
Web filtering
Hardware-based 2-factor authentication
Software-based Strong Authentication
Mutual authentication
Law enforcement enablement

Prevent cousin domains

MarkMonitor
http://www.markmonitor.com
Tel: +1 800 745 9229
MarkMonitor is the global leader in delivering comprehensive online corporate identity protection services, with a focus on making the Internet safe for business. MarkMonitor's integrated Brand and Fraud Protection platform provides full life-cycle management, including early warning, real-time detection, and investigation and response, to a wide and growing list of identity-based online security problems faced by corporations today. These solutions are enabled by a comprehensive brand and fraud intelligence network that monitors for inappropriate or fraudulent use of a corporate name or identity anywhere in the Internet, including web sites, search engines, major email systems, domain name systems, registries, message boards, blogs and chat rooms.

VeriSign
http://www.verisign.com
Tel: +1 650 426 5112 or +1 866 893 6565
VeriSign, Inc. is the world's leading SSL Certificate Authority, securing nearly 500,000 Web servers. Its customers include 93 percent of the Fortune 500, the top U.S. banks, and 47 of the 50 largest e-commerce sites. The rigorous VeriSign authentication and security practices over the last ten years have helped establish the VeriSign Secured Seal as the #1 mark of trust on the Internet. http://www.verisign.com/products-services/security-services/ssl/index.html

GlobalSign
http://www.globalsign.net
Tel US: 1-866-511-5035 or Tel EU: +32-16-28-71-23 or Tel UK: +44 1622-766766
Established in 1996 GlobalSign is one of the longest established SSL Providers and Certification Authorities, securing thousands of web sites, individuals, devices and identities. GlobalSign has been WebTrust compliant for over 4 years – the longest running in Europe and its well defined and executed authentication policies and procedures ensure GlobalSign products and services are amongst the most highly trusted available in the market.

BD-BrandProtect
www.brandprotect.com
Tel: 866-721-3725 and 905-271-3725
BD-BrandProtect, the leader in online threat protection, helps organizations gain control over how they are represented online by uncovering and mitigating the threats that put their reputation at risk and erode customer trust. BD-BrandProtect is uniquely positioned to provide detailed and actionable reports on the most relevant and highest priority threats by combining advanced technology, round-the-clock monitoring, proven best practices and exhaustive human analysis. BD-BrandProtect scours millions of domains, Web pages and Internet links in 15 primary languages to uncover infractions. It then categorizes and ranks them according to their severity, as well as initiates proactive and escalating response protocols to threats when required.

Cyveillance, Inc.
http://www.cyveillance.com
Tel: 888 243 0097 or 703 351 1000
Cyveillance Anti-Phishing is a comprehensive, turnkey solution that enables organizations to prevent, detect, and recover from phishing and fraud-related malware attacks. Using its proprietary Internet monitoring technology, proven processes and procedures, and industry-leading security operations team, Cyveillance identifies targeted fraud activity such as suspicious domain registrations, phishing lures, spoof sites, malware distribution points and the post-attack gathering and exchange of compromised credentials. Cyveillance Anti-Phishing is uniquely capable of searching, processing and delivering technologically advanced phishing attacks in virtually any language. All Cyveillance services and OEM feeds are backed by the industry’s most aggressive Service Level Agreements.

Internet Identity
http://www.internetidentity.com
Tel: 888 239 6932
Over thirty percent of fraud attacks rely on "cousin" variations of the target brand name (such as brand-account.com.) increasing the potential victim's misguided confidence in a scam. This threat vector can be controlled with an aggressive domain control program. Internet Identity's unique Domain Security Audit researches potentially threatening domains that contain your brand names, collecting current registration and usage data, and rating the threat level of domains you do not control. We provide expert recommendations and services to 1) improve your control of names you own, 2) re-gain control of registered domain that you do not own, 3) monitor new registrations that threaten your brands, and 4) register available domains to strengthen your defense against fraud attacks.

The GoDaddy Group, Inc.
http://www.godaddy.com
Tel: 480 505 8800
GoDaddy's BrandCatcher brand monitoring product uncovers the use of brand and trademarks on the Internet and provides alerts on related domain name registrations.

Detect and analyze attacks

VeriSign
http://www.verisign.com
Tel: +1 650 426 5130
Built on intelligence, experience, and a robust global infrastructure, VeriSign® Managed Security Services includes 24x7 monitoring, real-time intelligence, lifecycle threat analysis, and quick response. Our unique combination of people, process, intelligence, and technology enables you to proactively manage risk, monitor compliance, and mitigate emerging security threats.

Services include Managed Firewall and VPN Service, Managed Intrusion Prevention, Managed Intrusion Detection, Managed Vulnerability Protection Service, Managed Vulnerability Alerting, Managed Incident Response and Forensics, Phishing Response, and iDefense Security Intelligence Service.
http://www.verisign.com/products-services/security-services/managed-security-services/index.html

Sophos
www.sophos.com
US Tel: 781-973-0110 and Canada Tel: 604-484-6400
PhishAlert: Sophos PhishAlert Service provides fast, near real-time alerts of phishing campaigns, so you can take steps to shut down the imitation website and protect your customers. It is based on an extensive network of spam traps and expert analysis from SophosLabs™, Sophos's global network of spam detection and analysis centres. This service also protects against identity theft by providing information on hosts of phishing sites.

Digital Resolve
http://www.digital-resolve.net
http://www.digital-resolve.net/solutions/escam.html
Tel: 678 258 6300
Digital Resolve's E-Scam is a new solution that is unlike other products on the market: it detects attacks in real time by leveraging the company's industry leading IP Intelligence and a rules-based engine to uncover new intelligence about spoofed emails and embedded URLs, such as the true location of the e-mail server and sender, and the validity of embedded URLs. Available as a standalone product that integrates with an organization's e-mail servers or client applications, E-Scam stops phishing at the initial point of contact, be it before an email hits a users' inbox or at the email server itself, offering a first line of defense against phishing attacks. Furthermore, the detailed forensic information collected by E-Scam is invaluable in analyzing, thwarting and avoiding future attacks.

Internet Security Systems, Inc.
http://www.iss.net
Tel: 404 236 2600
The Proventia Integrated Security Appliance from ISS uses a multilayered approach to block phishing attacks. This approach leverages ISS' market leading technologies in intrusion prevention and email content security. The ISS intrusion prevention technology can block against URL spoofing, a common technique used in phishing attacks. Additionally, ISS' email content security technology provides a block list of known phishing URLs and analyzes message composition to block emails that are suspected phishing attacks. This multilayered approach is a unique solution to the emerging phishing threat, leveraging multiple technologies as a means of increasing both effectiveness and accuracy.

Websense, Inc.
http://www.websense.com
Tel: 858 320 8000
Websense Enterprise(r) Security Premium Group(tm) blocks access to known phishing web sites. Using a series of proprietary processes, including data mining (such as signatures for spoofing utilizing browser vulnerabilities) and customer and partnership feedback. Websense identifies phishing sites and adds them automatically to the "Phishing and other frauds" category within the Websense Master Database for web filtering and web security. Discovered sites are also a key component of the Websense(r) Real-Time Security Updates(tm) that protect organizations in immediately from advanced phishing and malicious code threats.

Websense(r) Client Policy Manager(tm) blocks access to phishing based keyloggers, BOT's, and Trojan Horses. Real-time Security Updates to the application classification databases combined with the ability to block unknown attacks through lockdown and network lockdown, protect customers from phishing based malcode.

MessageLevel
http://www.messagelevel.com
Tel: 804-355-5560
The Message Level Protocol, as a result of its Sender-Based Authentication model, empowers companies with in-house, instant notification of phishing attacks. Messages that fail authentication are blocked from end-user delivery and the company is provided with related relevant contextual and forensic data. Information captured includes message content (single copy per unique campaign) to analyze content structure and URL's. Header data (e.g. purported IP hops, TO, FROM, Subject) are available and query-able and historical information/evidence is kept and used in ways such as real-time alerting of customers not currently authenticating mail, profiling perpetrators and their methods, and profiling customer target lists (e.g. Why were these people targeted?).

Panda Software
http://www.pandasoftware.com
Tel: +34 91 806 37 00
Panda Software, a world leader in virus and intrusion prevention, presents its new family of solutions. The new range of IT security products boasts a series of outstanding technological innovations and caters for all clients, from the largest corporations to home users. More information at: http://www.pandasoftware.com/products and http://www.pandasoftware.com/downloads/

McAfee, Inc.
http://www.mcafee.com
Tel: 1 (888) VIRUSNO
The McAfee VirusScan 8.0i product helps prevent end-user's machines from being recruited and exploited as part of a Bot-Net by both detecting Trojan and backdoor malicious code, protecting against buffer overrun attacks and network attacks. Finally, all McAfee Antivirus products, from the desktop to the server to the gateway include the the world-class McAfee scan engine to detect and defend against key loggers and script exploits that are often used in Phishing attacks.

McAfee Entercept and McAfee Foundstone protects protect ISPs from being compromised and subsequently used to host Phishing sites by identifying weaknesses and protecting against buffer overrun type attacks.

http://www.rsa.com
TEL: North America: 1- 877 RSA 4900 and Europe: + 00 800 2299 4613
RSA® FraudActionSM is a proven anti-phishing/anti-fraud service, geared specifically toward stopping and preventing fraud that occurs in the online channel. Through an integrated network of partners, including over 4,500 ISPs, CERTS and web hosting entities throughout the world, FraudAction is dedicated to providing protection against the threat of phishing, pharming and Trojan attacks. Supported by RSA's exclusive 24x7 Anti-Fraud Command Center (AFCC), the FraudAction service has been responsible for shutting down over 40,000 attacks in more than 130 countries and has helped reduce the lifespan of online attacks to an average of 5 hours. FraudAction is in use today by more than 200 financial institutions around the globe.

Symantec Online Fraud Management Solution
http://enterprisesecurity.symantec.com/industry/finance/OnlineFraud.cfm
The Symantec Online Fraud Management Solution provides enterprises a multi-pronged solution for mitigating online fraud. It protects financial institutions and their customers by blocking fraudulent emails from reaching consumers and alerting the company that its customers are under attack. At the same time, the Symantec Online Fraud Management Solution provides customer education, customer desktop security assessment, and customer protection technologies that protect the consumer as well as the enterprise network. In addition, it provides services to share Symantec's online fraud expertise and ensure rapid implementation.

Cloudmark
http://www.cloudmark.com
Tel: 415 543 1220
Cloudmark Investigative Research
Cloudmark's research provides information on a wide range of topics, from why particular banks are attacked over others, to the underlying economy of phishing and the networks of geographically disparate individuals working together to carry out different aspects of the attacks. Our research team can explain the software, communications infrastructure and automation that phishers use. Cloudmark provides early warnings on which entities are likely to be attacked next, the timeline for attacks, the network used for attacks (including hacked servers used for message distribution) and phishing site hosts.

Takedown

VeriSign
http://www.verisign.com
Tel: +1 650 426 5130
VeriSign® Anti-Phishing Solution provides the most comprehensive security programs to minimize impacts from phishing attempts. It combines prevention, detection, and fast response via a customized program that meets each organization's security needs. VeriSign offers the benefits of security research intelligence, unique threat data available only to VeriSign and its customers, and around-the-clock support from online fraud experts. VeriSign uses its extensive monitoring and scanning capabilities to search for brand infringement, traffic-diversion tactics, and unwanted brand association with objectionable content. Brand monitoring lets companies know where their logos and content are used, or products distributed, without authorization. Our Phishing Response Service leverages extensive experience in Internet fraud services as well as a global network of contacts in the legal, government, and ISP communities to identify sources of phishing attacks and quickly shut down Web sites and accounts.

With a worldwide customer base and more than 4000 network-security devices under management, VeriSign views Internet activity with width and depth to comprehensively protect customers from emerging threats.
http://www.verisign.com/verisign-business-solutions/anti-phishing-solutions/index.html

Netcraft
http://news.netcraft.com/archives/2005/04/27/netcraft_phishing_site_feed_available.html
Netcraft's service helps banks and other financial organizations combat phishing techniques, so that once a phishing site has been detected, Netcraft responds with a set of actions which will limit access to the site and should ultimately cause the fraudulent content to be eliminated.

Internet Identity
http://www.internetidentity.com
Tel: 888 239 6932
Internet Identity provides 24/7 phishing web site deactivation services for several leading financial institutions and Internet service companies today, shuttering phishing sites within hours. We work as a stand-alone solution or as an additional expert resource for our clients' internal teams. Clients receive regular status updates and full post-incident reporting. Swift response to the first phishing attack is the most effective deterrent to future attacks.

Cloudmark
http://www.cloudmark.com
Tel: 415 543 1220
Cloudmark Investigative Research
Cloudmark's research can provide information from why particular banks are attacked over others, through to the underlying economy of phishing and the networks of geographically disparate individuals carrying out different aspect of the attacks, through to the software, communications infrastructure and automation that phishers use. Cloudmark provide early warning on which entities are likely to be attacked next, the timeline for attacks, the network used for attacks including hacked servers used for message distribution and phishing site hosting.

Fraud analysis

Anakam LLC
http://www.anakam.com
Tel: 858 546 4415
Whisper(tm) reporting allows access to detailed information outlining abandoned attempts to access accounts after additional authentication is requested.

MessageLevel
http://www.messagelevel.com
Tel: 804-355-5560
The data gathering and archiving capabilities of the Message Level Protocol allows for coherent in-house analysis of fraudulent email activity and associated information. This data is easily accessible and available for analysis in an unlimited number of ways. These data can co-mingle with fraud alerting and modeling applications across the enterprise, as fraudulent email may be but one point in a complex fraud attempt. Likewise the ability to compare points such as content structure, timing, preferred IP routes, preferred site hosting, and the ability to profile the target list, en masse, opens up possible perpetrator profiling, pre-attack takedown opportunities, and prosecution measures impossible by and other means.

Forensic services

Websense, Inc.
http://www.websense.com
Tel: 858 320 8000
Websense(r) Web Security Suites(tm) include a service called Brandwatcher(tm) which alerts Websense customers if their organization's web site or brand has been targeted in a phishing or malicious keylogging code attack. This service provides the organization with security intelligence including the attack details and other security-related information.

MessageLevel
http://www.messagelevel.com
Tel: 804-355-5560
The Message Level Protocol provides companies with instantaneous access to the forensic data required to initiate a response. Companies will have access to complete contextual and transport layer data the moment a fraud attempt takes place (and of course is blocked from delivery). Likewise the Message Level Protocol provides companies with in-house, organized and query-able historical data that can be used to profile perpetrators (helping to determine if it is strictly an outside job, or perhaps even an inside job, e.g. employees selling customer data), their methods, techniques and other information that can lead to effective pre-attack takedowns, and post-attack prosecutions.

Application gateways

Solutions Directory Category in Development

Consumer toolbars

GeoTrust
http://www.geotrust.com
Tel: 781 292 4162
GeoTrust helps consumers protect themselves online from identity theft and fraud scams with TrustWatch, GeoTrust's FREE anti-phishing toolbar. Download the toolbar now, visit http://www.trustwatch.com

Netcraft
http://toolbar.netcraft.com
Netcraft Toolbars
The Netcraft Toolbar community is effectively a giant neighbourhood watch scheme, empowering the most alert and most expert members to defend everyone within the community against phishing frauds. Once the first recipients of a phishing mail have reported the target URL, it is blocked for community members as they subsequently access the URL. Widely disseminated attacks simply mean that the phishing attack will be reported and blocked sooner.

Cloudmark
http://www.cloudmark.com
Tel: 415 543 1220
Cloudmark Consumer Protection Solutions
Cloudmark provides award-winning and highly accurate email client and browser anti-phishing solutions. Cloudmark Desktop for email and the Cloudmark Anti-Fraud Toolbar for Internet Explorer provide protection by preventing customers from receiving phishing emails in the first place and/or by blocking uploads of phishing-related URLs. These tools can be completely customized and branded for financial institutions and can also be integrated with other client solutions.

SecureBrain Corporation
http://www.securebrain.co.jp (Includes English-language pages.)
Tel: +81 3 3234 3001
PhishWall is the revolutionary Anti-Phishing solution that uses a new patent-pending (PATPEND:2004-195208) "user-based" web server authentication technology based on a public key encryption algorithm. Through the PhishWall solution, corporations can offer a more secured Internet-based e-commerce environment to their customers and protect them against phishing attacks. SecureBrain PhishWall uses an established cryptographic message exchange scheme to give consumer an easy graphical way to assure he is on the proper Website for his banking, shopping and payments, applications.

Email authentication

Entrust
http://www.entrust.com
http://www.entrust.com/identityguard/index.htm
TEL: North America: 1-888-690-2424 and Europe: +44 (0) 118 902 2098
Entrust IdentityGuard(tm) provides a second factor of user authentication that is designed to help organizations counter identity theft by making it more difficult for attackers to steal user online identities. With Entrust IdentityGuard, users continue to employ their current user name and password, but are also provided with a second physical form of authentication based on an assortment of characters in a row/column format printed on a card. A user must successfully complete a coordinate challenge to demonstrate that they are in possession of the appropriate card. Entrust IdentityGuard(tm) has been designed to address the real-world demands of second-factor authentication, making it easier to use while helping to reduce deployment and management costs.

TriCipher, Inc.
http://www.tricipher.com
Tel: +1.650.372.1324
The TriCipher Armored Credential System (TACS) is a unified authentication infrastructure that protects online identities from fraud and identity theft by issuing and managing a variety of secure, easy to use, and low cost credentials. The TriCipher patented multi-part credential provides unparalleled protection of a user’s online identity while maintaining the familiar user experience of entering a username and password. One part of the TriCipher credential is generated on the user’s computer and the other portion is stored on the ID Vault appliance. To successfully authenticate, both parts of the credential must be combined, making it virtually impossible for an attacker to steal the entire credential to log into an account to commit fraud or identity theft. With the secure multi-part credential as the foundation, the TriCipher Authentication Ladder integrates a range of authentication factors including passwords, browser cookies/certificates, PCs, portable devices, tokens, smart cards and biometrics to provide a complete authentication system.

MessageLevel
http://www.messagelevel.com
Tel: 804-355-5560
The Message Level Protocol is an email authentication technology used to prevent, detect and track fraudulent electronic communications as well as track - and provide receipts - for delivery of legitimate electronic communications sent to end-users. Flexible enough to be deployed at both the server level and client level, the Message Level Protocol utilizes queryable transport layer data from all outbound email sent by an organization in order to enable recipient systems to query back and verify automatically the authenticity of received emails before final delivery to end-user mailboxes. All recipients' email systems need do is ask the sender "Did you send me this email?". The Message Level Protocol also brings in house the detection, alerting, and forensic gathering capabilities currently outsourced to other providers. With Message Level Protocol receipts, companies have message tracking and verified delivery of legitimate messages, enabling (at last) paperless operating environments that meet evidentiary and regulatory requirements for bill presentment and official enterprise-to-customer communications.

GlobalSign
http://www.globalsign.net
Tel US: 1-866-511-5035 or Tel EU: +32-16-28-71-23 or Tel UK: +44 1622-766766
GlobalSign authentication solutions can help organizations protect and assure customers of online identities through the use of SSL and code signing. Its RA solutions allow organizations to manage policies and controls associated with identities of employees, suppliers and customers by using standards based client certificates for remote authentication (including SSL VPNs) and email security. Such GlobalSign solutions are used worldwide by major enterprises, educational establishments and Government bodies.

Tumbleweed Communications
http://www.tumbleweed.com
Tel: 800 696 1978
Europe Tel: +44 (0)118 934 7100

Tumbleweed MailGate Email Firewall
Tumbleweed's Email Firewall is a leading email security gateway that supports the industry's two leading email authentication standards: SPF (Sender Policy Framework) and S/MIME Digital Signatures. SPF allows organizations receiving an email message to look up the authorized email servers for a given sender?s domain, and determine if the message was sent from a legitimate source. And by signing outgoing email with a S/MIME Digital Signatures, your organization provides positive proof to customers and partners that your communications with them are authentic. Tumbleweed is working with the IETF and other email industry leaders to create the next-generation signature-based email authentication standard.

Tumbleweed MailGate Secure Messenger
Tumbleweed Secure Messenger is the industry's leading enterprise email encryption software. Secure Messenger allows organizations to encrypt email sent to customers, suppliers or partners; securely deliver personalized and branded email messages and documents including account statements, trade confirmations, and tax information; and integrate with existing identity management or PKI systems for user authentication and access. Leading financial services firms are using Secure Messenger to communicate securely with their customers

Gemalto
http://gemalto.com/
Gemalto's email authentication solution is a comprehensive end-to-end authentication platform that:

Enables small, medium or large organizations to implement strong 2-factor authentication using their existing network infrastructure.

Protects against phishing attacks, key logging, shoulder surfing and stolen passwords.

Features a broad range of interoperable smart card based personal security devices in card and USB token form factors.

Uses smart card technology for one-time passwords and Public Key Infrastructure (PKI) certificate authentication.

Includes a browser plug-in and server application for authentication and a Web-based customer care and user self-service portal.

GeoTrust
http://www.geotrust.com
Tel: 1 866 273 7355
Tel: 1 678 942 0400 (International)
http://www.geotrust.com/enterprise_security/index.htm
True Credentials(r)
Fully managed digital certificate lifecycle management for effective secure email services that is fast and easy to setup, backed by a world-class certificate authority and with minimal infrastructure impact.

True Credentials Express(tm)
Fully managed digital certificate lifecycle management for effective secure email services specifically designed for deployments under 1,000 certificates. Its still fast and easy to setup, backed by a world-class certificate authority and with minimal infrastructure impact.

The GoDaddy Group, Inc.
http://www.godaddy.com
Tel: 480 505 8800
GoDaddy's email solution supports SPF records.

Symantec Mail Security 8200 Series Appliances
http://enterprisesecurity.symantec.com/products/products.cfm?productid=725
Symantec Mail Security 8200 Series is designed to provide a secure e-mail gateway, helping to ensure an available e-mail infrastructure. Customers are offered the highlest level of spam and virus protection through the integration of Symantec Brightmail AntiSpam and Symantec AntiVirus technologies. Symantec Mail Security 8200 Series also integrates volume management, attack prevention, content filtering, encryption, anti-forgery and archiving functionality into a single solution.

VeriSign
http://www.verisign.com
Tel: +1 650 426 5130
VeriSign® Trusted Messaging provides end-to-end security for high-value email by enabling employees to easily encrypt and digitally sign messages. Using VeriSign Trusted Messaging to secure sensitive information, an enterprise can expand its reach, deepen collaboration, streamline business processes, reduce paper-related and operational costs, and maximize the return on its existing email technology-without investing in additional software or hardware. By utilizing VeriSign® Trusted Messaging, enterprises can ensure the highest level of confidentiality and trust.
http://www.verisign.com/products-services/security-services/pki/pki-application/trusted-messaging/index.html

Email filtering

Iconix
http://www.iconix.com
TEL: 650-961-0120
ICONIX, Inc. is the leading innovator in trusted email identification solutions. Providing a value added identification service on top of Sender ID and DomainKeys/DKIM, including authentication support in webmail clients, the company’s visual eMail ID solution uses an icon to enable consumers to instantly identify which messages in their inbox are real, thereby enabling senders to restore trust in email communications with their customers.

VeriSign
http://www.verisign.com
Tel: +1 650 426 5130
VeriSign® Messaging Security and Compliance Services offers a suite of solutions that secure enterprises from spam and virus attacks while providing the tools to help meet regulatory and legislative requirements to achieve messaging security and compliance. With a fully distributed network and high availability, VeriSign Messaging Security and Compliance Services delivers these capabilities today-without requiring any investment in hardware, software or storage systems.
http://www.verisign.com/products-services/security-services/messaging-security-and-compliance/index.html

Sophos
www.sophos.com
US Tel: 781-973-0110 and Canada Tel: 604-484-6400
PureMessage: Sophos PureMessage is a comprehensive, flexible and mature mail filtering solution, protecting against spam, phishing, viruses and other email-borne security threats. It combines mail filtering/threat reduction technology with policy management and world-class enterprise support. Millions of users worldiwde rely on PureMessage to remove up to 98% of spam at the gateway, using the latest anti-spam techniques. Industry-leading virus detection tools scan for known and unknown viruses, safeguarding the network against malicious code. PureMessage enables businesses to take greater control of their email traffic resulting in reduced network downtime and productivity loss.

Netcraft
http://news.netcraft.com/archives/2005/04/27/netcraft_phishing_site_feed_available.html

Netcraft launched an anti-phishing system at the start of 2005: people install a toolbar and effectively become part of a giant neighbourhood watch system whereby the most experienced members of the community can report phishing sites and effectively block them for the rest of the community. Netcraft is now making available the list of phishing sites reported by the Toolbar community and validated by Netcraft as a continuously updated feed suitable for ISPs, hosting companies, enterprises, and other companies that operate mail servers and web proxies, or network monitoring systems.

McAfee, Inc.
http://www.mcafee.com
1-(888) VIRUSNO
McAfee SpamKiller(r) includes specific rules that help to identify phishing attacks by looking for certain phishing specific characteristics that can be present in e-mail. Once triggered, these rules are automatically assigned an overall spam rating by SpamKiller, which results, in most cases, with the messages being blocked. Together with the Anti-Phishing Working Group (APWG), McAfee has compiled a thorough database of phishing attacks and uses the knowledge from these attacks to create effective filtering rules.

Tumbleweed Communications
http://www.tumbleweed.com
Tel: 800 696 1978
Europe Tel: +44 (0)118 934 7100

Tumbleweed MailGate Email Firewall
Tumbleweed's Email Firewall is a leading email security gateway solution offering comprehensive inbound and outbound email protection. MailGate Email Firewall includes an integrated set of anti-spam, anti-virus, anti-phishing, content filtering, email relay and encrypted messaging capabilities -- minimizing email communications risks and reducing email management costs. Tumbleweed?s anti-spam engine filters out spam, phishing, and other scams from your organization?s inbound email stream. Tumbleweed uses a live feed of reported phishing emails submitted to the Anti-Phishing Working Group to ensure that all the latest phishing scams are identified and stopped.

Tumbleweed MailGate Anti-Spam Appliance
Tumbleweed MailGate AntiSpam is Tumbleweed?s turn-key, cost effective anti-spam appliance. MailGate AntiSpam includes an integrated set of anti-spam, anti-virus, anti-phishing, and email relay capabilities, leveraging the same anti-spam engine found in Tumbleweed's MailGate Email Firewall to filter out spam, phishing, and other scams from your organization?s email. Tumbleweed uses a live feed of reported phishing emails submitted to the Anti-Phishing Working Group to ensure that all the latest phishing scams are identified and stopped.

Tumbleweed MailGate Edge Appliance
Tumbleweed MailGate Edge is a secure email relay that delivers state-of-the-art network-based defense against "Dark Traffic" email in a simple to-manage Linux-based appliance. Dark Traffic” currently represents up to 70% of all inbound email traffic. It is made up of spam, phishing, spam precursors like directory harvest attacks (DHA), email denial of service (DoS) attacks, malformed SMTP packets, invalid recipient addresses, and other requests and communications unrelated to the delivery of valid email messages. With most solutions available today, it is quite difficult to identify and block these kinds of email security threats. MailGate Edge leverage intelligent DHA and DoS technology to identify email threats based on network-level analysis of the SMTP conversation and IP addresses.

The GoDaddy Group, Inc.
http://www.godaddy.com
Tel: 480 505 8800
GoDaddy's email solution filters emails for spam and phishing emails.

Norton Internet Security 2005
http://www.symantec.com/sabu/nis/nis_pe/
Norton Internet Security 2005 is the easiest and most complete online security and privacy suite for home users and small offices. Right out of the box, Norton Internet Security 2005 provides comprehensive protection against today's most prevalent Internet threats, including viruses, worms, and Trojan horses as well as hackers, privacy threats, spam email, and inappropriate Internet content.

Norton AntiSpam 2005
http://www.symantec.com/antispam/
Norton AntiSpam 2005 is a powerful yet easy-to-use solution that automatically and accurately detects and filters out unwanted e-mail at the desktop. Enhanced filtering capabilities protect users from e-mail spoofing and phishing scams as well as from sexually explicit content.

Symantec Brightmail AntiSpam 6.0
http://enterprisesecurity.symantec.com/products/products.cfm?productid=642
Symantec Brightmail AntiSpam 6.0 is designed to further protect enterprises from the latest spamming techniques by providing new non-English language filters and powerful administration enhancements. Symantec Brightmail AntiSpam 6.0 includes a centralized Web-based control center, consolidated logging and reporting, and global policies that can be created on a per-user or per-group basis.

Symantec Mail Security 8200 Series Appliances
http://enterprisesecurity.symantec.com/products/products.cfm?productid=725
Symantec Mail Security 8200 Series is designed to provide a secure e-mail gateway, helping to ensure an available e-mail infrastructure. Customers are offered the highlest level of spam and virus protection through the integration of Symantec Brightmail AntiSpam and Symantec AntiVirus technologies. Symantec Mail Security 8200 Series also integrates volume management, attack prevention, content filtering, encryption, anti-forgery and archiving functionality into a single solution.

Symantec Premium AntiSpam
http://enterprisesecurity.symantec.com/products/products.cfm?productid=708
Symantec Premium AntiSpam is an add-on subscription service, powered by Brightmail technology and response, that provides best-of-breed spam prevention for Symantec Mail Security and Symantec AntiVirus Enterprise Edition customers.

Web filtering

Hardware based 2-factor authentication

VeriSign
http://www.verisign.com
Tel: +1 650 426 5130
VeriSign® Unified Authentication is the most comprehensive strong authentication solution, offering a wide choice of credentials, devices, and deployment options for securing global enterprises. VeriSign Unified Authentication provides a single, integrated platform for provisioning and managing any type of two-factor authentication credential. By adhering to open standards and leveraging your existing infrastructure, Unified Authentication greatly reduces the cost and complexity of deploying a strong authentication solution. VeriSign Intelligent Infrastructure lends scalability to the Unified Authentication technology, giving you flexibility to expand your business and greater control of your network security environment.
http://www.verisign.com/products-services/security-services/unified-authentication/index.html

VASCO Data Security
http://www.vasco.com
Tel: +1 508 366 3400 (US) and +32 2 456 9810 (Belgium)
DIGIPASS handheld tokens generate Dynamic Passwords, which are time-based and/or event-based, and are used by 350 Banks and many Corporations in the world. Dynamic Passwords can be: One Time Password, Challenge/Response, Host Authentication and Signature Password. Integration Libraries for any Operating System available, already integrated in many commercial security solutions.

Gemalto
http://gemalto.com/
Gemalto's strong 2-factor authentication solution is a comprehensive end-to-end authentication platform that:

Enables small, medium or large organizations to implement strong 2-factor authentication using their existing network infrastructure.

Protects against phishing attacks, key logging, shoulder surfing and stolen passwords.

Features a broad range of interoperable smart card based personal security devices in card and USB token form factors.

Uses smart card technology for one-time passwords and Public Key Infrastructure (PKI) certificate authentication.

Includes a browser plug-in and server application for authentication and a Web-based customer care and user self-service portal.

Software-based Strong Authentication

Gemalto
http://gemalto.com/
Gemalto's software-based strong authentication solution is a comprehensive end-to-end authentication platform that:

Enables small, medium or large organizations to implement strong 2-factor authentication using their existing network infrastructure.

Protects against phishing attacks, key logging, shoulder surfing and stolen passwords.

Features a broad range of interoperable smart card based personal security devices in card and USB token form factors.

Uses smart card technology for one-time passwords and Public Key Infrastructure (PKI) certificate authentication.

Includes a browser plug-in and server application for authentication and a Web-based customer care and user self-service portal.

Tricerion, Inc.
http://www.tricerion.com
Tel: +1 678 202 5078 or +44 870 120 5200
Tricerion’s strong authentication solution allows online service providers to prevent their users from disclosing personal security information to fake websites. Tricerion also increases the security of data flow between the application server and the user’s PC in such a way that the authentication information continues to be confidential even if SSL encryption is compromised, thus building a new layer of protection for online businesses, and helping users gain more trust in online transactions. Tricerion’s solution does not degrade user online experience, requires no hardware tokens or software installation, protects against phishing attacks exploiting social engineering, keystroke logging or screen capture, and requires minimal server-side integration.

Digital Resolve
http://www.digital-resolve.net
http://www.digital-resolve.net/solutions/fraudanalyst.html
Tel: 678 258 6300
Fraud Analyst is a real-time identity verification and risk-based authentication solution developed to prevent online fraud at every customer touchpoint - significantly reducing losses associated with identity theft and online fraud. And because Fraud Analyst utilizes transparent factors to provide strong authentication, there is minimal impact to the customer’s normal online banking experience. This new, multi-layered approach to authentication is a cost-effective and reliable method for preventing online fraud losses while automating the authentication process throughout the customer lifecycle. With their purchase of a single product, financial institutions can protect the customers at every interaction - whether verifying new account openings, preventing account hijackings or empowering end customers to authenticate a bank's website in real time.

Anakam LLC
http://www.anakam.com
Tel: 858 546 4415
Whisper(tm) is a proprietary second factor authentication solution that prevents fraudulent account access without incurring the cost and inconvenience associated with hardware devices and client installed software. It is applicable in three areas 1) online banking 2) eCommerce 3) corporate secured environments.

MessageLevel
http://www.messagelevel.com
Tel: 804-355-5560
The Message Level Protocol is a software based email authentication technology that provides the highest possible authentication for an individual email. It asks the purported sender "Did you send me this email?". This places the absolute control over the email channel between a company and their customers or prospects in the hands of the company itself. As such, this Sender-Based Authentication method is based not on interpretation by the recipient, but on an absolute yes or no from the sender themselves.

Mutual authentication

Tricerion, Inc.
http://www.tricerion.com
Tel: +1 678 202 5078 or +44 870 120 5200
Tricerion builds trust in online transactions with a new breakthrough concept in mutual authentication that prevents users from falling prey to account hijacking schemes. Tricerion’s solution does not degrade user online experience, requires no hardware tokens or software installation, protects against phishing attacks exploiting social engineering, keystroke logging or screen capture, and requires minimal server-side integration. Tricerion also increases the security of data flow between the application server and the user’s PC in such a way that the authentication information continues to be confidential even if SSL encryption is compromised, thus building a new layer of protection for online businesses, and helping users gain more trust in online transactions.

MessageLevel
http://www.messagelevel.com
Tel: 804-355-5560
The Message Level Protocol allows one-way email authentication (a customer accessing email with a username and password) to become a mutual authentication scheme in which a company can authenticate all mail attempting to be delivered to that customer, purported as coming from them, before receipt by the end user, with all fraudulent attempts blocked from delivery. This Sender-Based Authentication model not only provides comfort to both a company and end-user in knowing that email is legitimate and the channel reliable for future expansion of use, it also provides a company with real-time notification of fraudulent attempts to use a company's credentials (their email address).

Gemalto
http://gemalto.com/
Gemalto's mutual authentication solution creates maximum trust while making online transactions simpler and more secure by:

Offering the highest level of Internet identity protection with a smartcard based USB security device

Protecting against phishing, man-in-the-middle, spoofing, bots, Trojans etc.

Putting the user in control with unsurpassed convenience and portability

Allowing usage from any PC with a browser

Working with standard account privileges and browser settings

Allowing authentication to multiple sites with the same device

Lowering operational costs and complexities for protecting online consumer identities

Requiring no client software for end-users, or middleware or additional server hardware

Supporting multiple languages for worldwide deployment

Law enforcement enablement

Cloudmark
http://www.cloudmark.com
Tel: 415 543 1220
Cloudmark Phishing Intelligence Center
Cloudmark has the world’s largest global threat detection network, processing over three billion messages per day with tens of millions live reporters in more than 160 countries to generate a real-time database of active phishing attacks,. The Cloudmark Phishing Intelligence Center provides real-time intelligence derived from this collaborative community of reporters and Cloudmark's proprietary analysis methods inform financial institutions on how their consumers are being attacked by phishing threats. Cloudmark provides real time alerts on the latest phishing attacks, their rate of propagation, URL/domain/IP addresses of the compromised servers hosting the phishing campaign as well as the IP addresses of the consumers being attacked. Cloudmark can provide a geographical indication of the source and movement of the phishing attack, down to zip codes of consumers targeted.